Cybersecurity - The CSIRT of the Autonomous Province of Trento

The proposal is aimed at strengthening the provincial Computer Security Incident Response Team (CSIRT), which is in charge of cyber risk prevention and mitigation through activities supporting vulnerability management, information sharing and situational awareness, protection level monitoring, and cyber security incident detection, analysis and response.

The provincial CSIRT's participation in the national CSIRT network will contribute to enhancing its operations through collaboration and cooperation mechanisms with the various actors in the national cyber security ecosystem.

The CSIRT's mandate will be to provide structured and updated services in the areas of info security event management, info security incident management and vulnerability management, which already exist, and to provide new services in the areas of situational awareness and knowledge transfer.

The CSIRT services, partly provided today for the Province, will be extended to the entire Trentino Public System.

The National Cybersecurity Agency admitted the project proposal of the Autonomous Province of Trento for funding with its determination no. 30697 of 30 November 2023.

Enabling an improvement in the capacity to prevent and manage computer incidents, with the aim of ensuring the continuity and security of services and data, as well as enhancing and enriching the services provided with appropriate processes, organisational model and professional figures and tools

The implementation of the NRP in Trentino fits coherently into the programme framework for sustainable provincial development, according to the policies identified in the provincial Economic and Financial Document and its Update Note

PNRR funding: € 1,497,947.00

• The first Intervention Area was made operational through the definition and implementation of the processes of the provincial CSIRT, in accordance with the ACN guidelines and the SIM3v1 model. In particular, this concerned the structural definition and formalisation of the governance framework of the CSIRT of the Autonomous Province of Trento.
• Specialised training is currently underway for the personnel involved, with the aim of bridging the skills gap and raising the CSIRT's level of readiness through a training plan structured to cover the different areas of competence required by the CSIRT, in line with the indications provided by ACN in the guidelines. The training plan has been structured to provide a multidisciplinary preparation that ranges from governance to operational response to incidents, also including preparatory courses for globally recognised certifications aimed at formally validating the skills acquired.
• The activities and related administrative procedures for the acquisition of the platforms and software solutions required to cover the mandated functionalities of a modern CSIRT are currently being implemented. These tools have been selected to ensure interoperability and coverage of the entire security management life cycle.
• In line withIntervention Area 4 (definition, implementation and improvement aimed at the provision of services also to the health and/or energy efficiency and/or protection of the territory and water resources sectors) envisaged by the reference public notice, the above-mentioned technological investments were sized and designed from the outset to include in their scope of action also the infrastructure and services of the Provincial Agency for Health Services (APSS).
  In addition, a specific need was also identified for the hospital context characterised by a high heterogeneity of connected devices, which is currently being processed and resolved.